Code injection

There is a weak secure algorithm vulnerability in Huawei products. A weak secure algorithm is used in a module. Attackers can exploit this vulnerability by capturing and analyzing the messages between devices to obtain information. This can lead to information leak.Affected product versions...

CVE-2021-22356

CVE-2021-22356 affects Huawei security devices and modules, including IPS Module V500R005C00SPC100/SPC200, NGFW Module V500R005C00SPC100/SPC200, Secospace USG6300/USG6500/USG6600, and USG9500. The vulnerability stems from use of a weak secure algorithm in a module that can be exploited by capturi...

Huawei Data Communication: Out of Bounds Write Vulnerability in Some Huawei Products (huawei-sa-20211020-01-outofwrite)

There is an out of bounds write vulnerability in some Huawei products. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...

CVE-2021-37129

There is an out of bounds write vulnerability in some Huawei products. The vulnerability is caused by a function of a module that does not properly verify input parameter. Successful exploit could cause out of bounds write leading to a denial of service condition.Affected product versions...

CVE-2021-37129

There is an out of bounds write vulnerability in some Huawei products. The vulnerability is caused by a function of a module that does not properly verify input parameter. Successful exploit could cause out of bounds write leading to a denial of service condition.Affected product versions...

Information Disclosure Vulnerability in Multiple Huawei Products (CNVD-2021-84910)

Huawei IPS Module is an intrusion prevention system IPS module. Huawei USG9500 is a firewall appliance used in large environments. An information disclosure vulnerability exists in several Huawei products, which stems from a block that does not adequately validate input. An attacker with elevated...

Huawei Data Communication: Memory Leak Vulnerability in Huawei Products (huawei-sa-20210506-01-memleak)

There is a memory leak vulnerability in Huawei products. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you...

CVE-2021-22341

There is a memory leak vulnerability in Huawei products. A resource management weakness exists in a module. Attackers with high privilege can exploit this vulnerability by performing some operations. This can lead to memory leak. Affected product versions include:IPS Module...

Memory corruption

There is a memory leak vulnerability in Huawei products. A resource management weakness exists in a module. Attackers with high privilege can exploit this vulnerability by performing some operations. This can lead to memory leak. Affected product versions include:IPS Module...

Huawei Data Communication: Information Leak Vulnerability in Huawei Products (huawei-sa-20210428-01-infomationleak)

There is an information leak vulnerability in Huawei products. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

CVE-2021-22342

There is an information leak vulnerability in Huawei products. A module does not deal with specific input sufficiently. High privilege attackers can exploit this vulnerability by performing some operations. This can lead to information leak. Affected product versions include: IPS Module versions...

Information disclosure

There is an information leak vulnerability in Huawei products. A module does not deal with specific input sufficiently. High privilege attackers can exploit this vulnerability by performing some operations. This can lead to information leak. Affected product versions include: IPS Module versions...

CVE-2021-22342

There is an information leak vulnerability in Huawei products. A module does not deal with specific input sufficiently. High privilege attackers can exploit this vulnerability by performing some operations. This can lead to information leak. Affected product versions include: IPS Module versions...

Huawei IPS Module 安全漏洞

Huawei IPS Module is an Intrusion Prevention System IPS module from Huawei of China.NGFW Module is a firewall product.Secospace USG6300 is a next-generation firewall product.Secospace USG6600 is a next-generation firewall product. Multiple Huawei products are vulnerable to memory leaks, which can...

Huawei IPS Module和Huawei USG9500 输入验证错误漏洞

Huawei IPS Module is an intrusion prevention system IPS module. Huawei USG9500 is a firewall appliance used in large environments. An information disclosure vulnerability exists in several Huawei products, which stems from a block that does not adequately validate input. An attacker with elevated...

Memory corruption

There is a memory leak vulnerability in some Huawei products. An authenticated remote attacker may exploit this vulnerability by sending specific message to the affected product. Due to not release the allocated memory properly, successful exploit may cause some service abnormal. Affected product...

CVE-2021-22312

CVE-2021-22312 is a memory-leak vulnerability in Huawei devices (IPS Module, NGFW Module, Secospace USG6300/USG6500/USG6600/USG9500). The root cause is improper memory release after handling certain messages, allowing an authenticated remote attacker to trigger a leak by sending a specific messag...

CVE-2021-22312

There is a memory leak vulnerability in some Huawei products. An authenticated remote attacker may exploit this vulnerability by sending specific message to the affected product. Due to not release the allocated memory properly, successful exploit may cause some service abnormal. Affected product...

CVE-2021-22320

There is a denial of service vulnerability in Huawei products. A module cannot deal with specific messages correctly. Attackers can exploit this vulnerability by sending malicious messages to an affected module. This can lead to denial of service. Affected product include some versions of IPS...

Denial of service

There is a denial of service vulnerability in Huawei products. A module cannot deal with specific messages correctly. Attackers can exploit this vulnerability by sending malicious messages to an affected module. This can lead to denial of service. Affected product include some versions of IPS...